| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-Id: <201004152252.o3FMqTdl006732@demeter.kernel.org> Date: Thu, 15 Apr 2010 22:52:29 GMT From: bugzilla-daemon@...zilla.kernel.org To: linux-ext4@...r.kernel.org Subject: [Bug 15792] ext4_inode_inode->i_flags modification is racy https://bugzilla.kernel.org/show_bug.cgi?id=15792 --- Comment #4 from Dmitry Monakhov <dmonakhov@...nvz.org> 2010-04-15 22:52:22 --- Most interesting part is last lines [61] [2] truncate clr s:737987 d:737987 b:104 fl:80000 [62] [0] clr ext4_inode_blocks_set b:104 fl:480000 bit:40000 [63] [2] trunc_ext begin s:737987 d:737987 b:104 fl:480000 ml:1 I.E. CPU2: is doing EXT4_I(inode)->i_flags &= ~EXT4_EOFBLOCKS_FL CPU0: is doung ei->i_flags &= ~EXT4_HUGE_FILE_FL CPU2: Wow EXT4_EOFBLOCKS_FL appear again due to race with cpu0. So even if truncate holds i_mutex it is possible to modify i_flags. Seems that we have to modify i_flags via anomic bits operations. A fix is almost ready. Currently i'm testing it. -- Configure bugmail: https://bugzilla.kernel.org/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are watching the assignee of the bug. -- To unsubscribe from this list: send the line "unsubscribe linux-ext4" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists